Step Template Name XSS Vulnerability #3915
Labels
priority
(obsolete) This issue has been recognised as a priority and should be addressed as soon as possible
Milestone
There is a XSS vulnerability in the step template name, when either importing or adding a custom step template.
Refer to: https://secure.helpscout.net/conversation/465740876?folderId=557080
Also see: https://github.com/OctopusDeploy/OctopusDeploy/issues/1463
Fixed by https://github.com/OctopusDeploy/OctopusDeploy/commit/582e2b1203ecda0df06e121f68db11ee20ee583d
CVE-2017-16801
The text was updated successfully, but these errors were encountered: